Описание
ghostscript before version 9.21 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is used to decode halftone segments in a JBIG2 image. A document (PostScript or PDF) with an embedded, specially crafted, jbig2 image could trigger a segmentation fault in ghostscript.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 0.13-4.1 |
| bionic | not-affected | 0.13-4.1 |
| cosmic | not-affected | 0.13-4.1 |
| devel | not-affected | 0.13-4.1 |
| disco | not-affected | 0.13-4.1 |
| eoan | not-affected | 0.13-4.1 |
| esm-infra-legacy/trusty | released | 0.11+20120125-1ubuntu1.1 |
| esm-infra/bionic | not-affected | 0.13-4.1 |
| esm-infra/focal | not-affected | 0.13-4.1 |
| esm-infra/xenial | released | 0.12+20150918-1ubuntu0.1 |
Показывать по
EPSS
4.3 Medium
CVSS2
5.3 Medium
CVSS3
Связанные уязвимости
ghostscript before version 9.21 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is used to decode halftone segments in a JBIG2 image. A document (PostScript or PDF) with an embedded, specially crafted, jbig2 image could trigger a segmentation fault in ghostscript.
ghostscript before version 9.21 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is used to decode halftone segments in a JBIG2 image. A document (PostScript or PDF) with an embedded, specially crafted, jbig2 image could trigger a segmentation fault in ghostscript.
ghostscript before version 9.21 is vulnerable to a heap based buffer o ...
ghostscript before version 9.21 is vulnerable to a heap based buffer overflow that was found in the ghostscript jbig2_decode_gray_scale_image function which is used to decode halftone segments in a JBIG2 image. A document (PostScript or PDF) with an embedded, specially crafted, jbig2 image could trigger a segmentation fault in ghostscript.
EPSS
4.3 Medium
CVSS2
5.3 Medium
CVSS3